Did anyone actually find a solution to this? We get the same error even with subscription owner and global admin permission.
"Failed to update permissions on selected Key Vault" attempting to configure app service certificate
Purchased an app service certificate.
Attempting to configure. Step 1 - Key vault.
Select my key vault.
Get error "Failed to update permissions on selected Key Vault. Check below errors for more detail."
No errors displayed below.
Go to activity log. "An invalid value was provided for 'accessPolicies'.
I am a co-owner on the subscription and have all rights.
Thanks in advance
4 answers
Sort by: Newest
-
-
Gregory Suvalian 186 Reputation points
2022-11-28T21:26:03.163+00:00 Microsoft please provide actual solution, being Global Administrator for this to work is work around. Why owner permission on keyvault is not sufficient for RBAC changes?
-
Grmacjon-MSFT 16,101 Reputation points
2021-05-25T22:32:06.32+00:00 Thank you so much for your patience everyone. The App Service team investigated this issue and it turns out it can be resolved by adding the account configuring the App Service into a Global Administrator role in AAD. A Global Administrator can manage all aspects of Azure AD and Microsoft services that use Azure AD identities. There can be more than one Global Administrator at your company. Global Administrators can reset the password for any user and all other administrators.
If you are not the owner of the subscription, the owner can add you as a Global Admin by following the steps in this documentation: Assign administrator and non-administrator roles to users with Azure Active Directory.
Can you try this solution and let us know if it works for you? If you run into any issues please let us know.
@Teemu Nylander @Frits , @Bob Trabucco , @Keith RoweBest,
Grace -
Bob Trabucco 16 Reputation points
2021-05-20T01:13:54.263+00:00 The App Service is a standard ASP.NET C# web app.
But the problem happens long before I am doing anything with the app service.
The problem happens in the newly purchased "App Service CERTIFICATE"
See attached images